Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69ea5e37-ad95-4815-8e82-1aa4f4f37ec6.roa
File: 69ea5e37-ad95-4815-8e82-1aa4f4f37ec6.roa (raw, json)
Hash identifier: yt+rb66IBTJxY+ULhT03uyuOMfubpW1OwmX3PlntHe0=
Subject key identifier: C5:19:98:62:4A:A6:C0:3D:38:7F:4D:E5:02:EF:BB:9F:7A:6A:63:A2
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 127136A5CF249423463F3497802D807579633A7E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69ea5e37-ad95-4815-8e82-1aa4f4f37ec6.roa
Signing time: Fri 31 Oct 2025 00:10:37 +0000
ROA not before: Fri 31 Oct 2025 00:10:37 +0000
ROA not after: Fri 05 Dec 2025 23:59:59 +0000
asID: 16509
IP address blocks: 13.160.32.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:71:36:a5:cf:24:94:23:46:3f:34:97:80:2d:80:75:79:63:3a:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 31 00:10:37 2025 GMT
Not After : Dec 5 23:59:59 2025 GMT
Subject: serialNumber=9c18c775cd5e3bd46d5e9cbb7fa4b6c17a2692803e42f91fce87b7fcf3846466, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:51:e5:68:22:8c:0b:9e:9d:b9:4e:96:94:cd:
19:b8:11:d4:59:47:b5:47:9f:15:2d:1a:90:b9:b6:
a0:12:4f:0f:3f:32:d5:d6:ec:45:84:99:2c:4d:90:
3c:0d:c7:db:ed:49:70:16:33:bd:3c:d5:3b:46:47:
07:07:4c:81:f2:77:3c:a9:a3:c6:54:b3:a1:32:5c:
39:5d:5e:4c:dc:df:00:18:f9:d5:b6:1d:b2:cf:ea:
54:30:0f:9c:9d:52:18:aa:3e:a3:5d:33:1d:3d:09:
65:a5:5e:88:f5:ba:79:1d:c3:f2:0e:b5:15:67:ea:
1a:03:24:d8:20:40:37:72:a0:17:e1:d6:12:40:7b:
52:70:83:f1:a5:a8:7b:93:c7:62:32:ab:7a:33:d0:
e1:6c:3d:c6:c2:78:8f:33:b1:b5:10:70:dc:15:7f:
e4:8e:0c:fc:0c:27:b4:8d:21:da:1f:e8:9a:64:b9:
74:8b:60:fa:92:31:82:cf:6e:ab:d0:b9:52:fc:8a:
40:a2:13:c9:01:76:27:aa:c1:da:85:38:40:38:83:
8f:bc:48:7a:b9:96:0e:49:84:58:8a:ff:c3:09:e0:
aa:3c:37:87:9a:fa:85:02:17:d0:90:2b:9a:a5:29:
5c:7d:0a:62:30:8e:e1:d4:3b:37:78:86:9f:1f:61:
d1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:19:98:62:4A:A6:C0:3D:38:7F:4D:E5:02:EF:BB:9F:7A:6A:63:A2
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69ea5e37-ad95-4815-8e82-1aa4f4f37ec6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
13.160.32.0/21
Signature Algorithm: sha256WithRSAEncryption
58:d2:75:34:9c:f0:f8:66:4b:85:8b:b6:bd:2f:c5:48:5c:02:
60:3d:01:bb:d7:41:39:44:1c:34:3c:64:0c:ee:32:7c:47:5a:
f7:ea:26:c3:a6:1e:dd:fb:03:20:79:d0:16:71:50:f3:1b:bf:
2a:af:5f:ff:fe:6c:a3:06:84:f4:4c:47:9f:2a:26:d7:36:bc:
a9:f1:e3:a8:ed:12:e4:4e:9c:4f:cd:76:02:83:9b:ee:bc:a3:
f6:10:f2:56:ef:98:40:0a:38:37:12:b4:6d:24:50:90:68:48:
96:64:3a:2d:00:d8:60:64:39:af:73:10:29:54:d0:5f:14:4d:
7e:4f:4f:e2:c2:2f:25:0c:44:50:04:b1:4f:a9:a7:98:9f:36:
75:99:54:f5:c4:76:a2:6e:7e:52:d3:28:e5:17:28:8d:9b:0a:
27:04:29:ff:f0:81:66:a8:c7:c9:ee:fc:e9:a5:c1:62:36:7a:
61:ff:34:8d:fb:76:7a:0c:0b:48:c9:02:4c:cc:f8:91:68:ba:
4d:3b:9d:ff:e9:ef:7f:46:ad:17:8a:da:02:3d:88:0f:99:a8:
95:26:f4:f3:cc:80:6d:f8:98:f9:99:54:4a:a1:5f:70:1d:91:
54:60:23:1d:5e:4c:38:9b:b6:25:f3:2a:49:e2:bd:e1:e4:d0:
97:c0:38:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:49:49 2025 by rpki-client